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(54) System and method providing multi-tier applications architecture 



(57) A network-based distributed application sys- 
tem is provided in accordance with the present invention 
for enabling services to be establlsfied locally on a client 
system. The system may include an application and 
presentation logic, at least a portion of which Is inter- 



changeably processed by a server or a client without 
modification to the portion. The core functionality pro- 
vided by the application may be preserved between tiie 
client and the server wherein improved networl< per- 
formance may provided along with improved offline 
sen/Ice capabilities. 
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Description 

Reference to Related Application 

5 [0001] This application claims the benefit of U.S. Provisionai Patent Application Serial No. 60/213,188 which was 
filed June 21, 2000, entitled SYSTEM AND METHOD PROVIDING MULTI-TIER APPLICATIONS ARCHITECTURE. 

Technical Field 

10 [0002] The present Invention relates generally to computer systems, and more particularly to a system and method 
for providing a multi-tier distributed applications architecture wherein portions of remote applications may be executed 
from local systems to facilitate higher performance network/system operations and provide consistent offline/online 
user experiences. 

15 Bacicground of the Invention 

[0003] The explosion of Internet and other network technologies has fueled a technology revolution for the latter 
portions of the twentieth century and beyond. With these new and exciting technologies, companies - new and old, 
have been thriving and to some extent forced by circumstances to accept existing systems and network architectures 

20 which have evolved overtime and continue to provide existing services. For example, a common theme among internet 
systems Is to provide very powerful servers tightly coupled to large databases wherein the server may process thou- 
sands of requests from remote users surfing the worldwide web via server provided applications. While this model may 
continue to serve Internet traffic, performance and logistical problems remain unsolved by the present system. 
[0004] One such problem associated with the server provided applications model relates to leveraging of local client 

25 resources. For example, network servers tend to act as a bottleneck since they must perform a plurality of redundant 
computations In order to respond to a plurality of variable remote service requests. As Personal Computer (PC) per- 
formance has increased because of more powerful microprocessors and clock speeds, overall network performance 
has lagged these increases because bottlenecks created at the server end many times cause PC's to wait for remote 
processing to complete. Thus, Increases in current PC technology have not been fully leveraged/utilized by the current 

30 model. 

[0005] Another problem related to the server provided applications model Is associated with network performance 
in general. Web page accessing and manipulations, for example, generally require large amounts of data to continually 
be exchanged between remote clients and servers. As the number of users increase, data transactions on the Internet 
Increase thereby causing overall communications performance to decrease. Therefore, a more powerful and flexible 
35 systems architecture Is needed wherein clients may continue to enjoy network Interactivity, yet, reduce network requests 
and latency associated therewith. 

[0006] Still yet another problem associated with existing architectures is related to offline performance of network- 
based systems. Many Web pages, for example, provide an interactive and vibrant experience for users to observe and 
utilize data provided from a given site. As long as users remain online with the present site, the Interactive experience 
40 continues. Unfortunately, even though data files may be downloaded from these sites, the Interactive and often times 
useful presentation/manipulation of the data is lost when disconnecting from the server applications operating the web 
page. As users go offline to observe the data at a later time, it would be highly relevant and useful to be able to view 
and manipulate the data as If online with the associated server. Consequently, there Is an unsolved need for a system 
and/or methodology to provide offline service capabilities similar to those which may currently be obtained online. 

45 

Summary of the Invention 

[0007] The present invention relates to a multi-tier applications architecture wherein applications may be shared and 
leveraged across a plurality of systems. The multi-tier architecture enables local systems resources to service appll- 

50 cations that were conventionally provided at centrally located application server systems. Thus, perfonnance and offline 
capabilities are facilitated by the present invention since client personal computer systems may contribute and service 
network applications {e.g., Internet, Intranet, Wireless Networks, Telecommunications) locally as opposed to services 
being provided and thus communicated from central locations. By shifting performance capabilities from server systems 
to client systems, network performance may be Improved and latencies associated with remote service requests mlt- 

55 Igated. Furthemnore, offline capabilities may be improved. 

[0008] More specifically, the present invention provides a multi-tier architecture wherein interactive processing as- 
sociated with remote data systems may be performed locally. The architecture may include a presentation tier, a mobile 
tier (e,g., unguarded tier), a guarded tier, and a data tier. The presentation tier may include a browser for generating 
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remote user data requests, for example. The browser may then generate a local request to the mobile tier resident on 
a client machine, for example. Local application logic associated with the mobile tier may then send remote service 
requests to a guarded tier associated with a remote server having access to the data tier. Upon receiving the remote 
request, the guarded tier may download portions of appiications logic to the mobile tier along with associated data from 

5 the data tier for interacting and manipulating remote data associated with a web page and/or other network application. 
It Is noted that the applications portions described above may be alternatively loaded on the client end from a CD l=^OM, 
for example. Upon Installing the applications in the mobile tier, the client system may thus Interact with the remote data 
locally and thus leverage local computing resources and further mitigate networic accesses to the server system. More- 
over, a unified applications model is provided wherein client resources are more fully utilized, security is improved, 

10 installation costs are reduced, and round trip latencies associated with conventional server models improved. As will 
be described in more detail below, local accesses may be facilitated by providing a request handling system wherein 
local system accesses may be directed to local resources and remote accesses directed to remote locations - trans- 
parently from the user, By enabling applications to execute locally, users may interact with network data offline in a 
similar manner to their online experience. Thus, the present Invention provides an improved offline user experience. 

15 [0009] One specific aspect of the present Invention relates to a network-based application, comprising: application 
and presentation logic, at least a portion of which is interchangeably processed by a server or a client without modifi- 
cation to the portion. 

[0010] Another aspect of the invention relates to an architecture for processing network-based applications. The 
architecture Includes a presentation tier for interacting with a web-based application at a client. A mobile tier is oper- 
20 ativeiy coupled to the presentation tier, the mobile tier providing for executing at least a portion of the network-based 
application at either the client end or a server. A guarded tier is operatlvely coupled to at least one of the mobile tier 
and presentation tier, the guarded tier providing for executing remaining portions of the web-based application at the 
server. 

[0011] Another aspect of the Invention relates to a method for executing a network-based application, comprising: 
25 executing at least a portion of a network-based application on the client computer, the web-based application comprising 
application and presentation logic, at least a portion of which is interchangeably processed by a server or the client 

without modification to the portion. 

[0012] The following description and the annexed drawings set forth in detail certain illustrative aspects of the Inven- 
tion. These aspects are indicative, however, of but a few of the various ways in which the principles of the invention 
30 may be employed and the present Invention Is Intended to include ail such aspects and their equivalents. Other ad- 
vantages and novel features of the Invention will become apparent from the following detailed description of the Inven- 
tion when considered in conjunction with the drawings. 

Brief Description of the Drawings 

35 

[0013] 

Fig. 1 a Is a schematic block diagram Illustrating a multi-tier architecture in accordance with an aspect of the present 
Invention; 

40 Fig. 1 b is a schematic block diagram Illustrating a multi-tier architecture In accordance with another aspect of the 

present invention; 

Fig. 2 is a schematic block diagram illustrating a local applications environment in accordance with an aspect of 
the present Invention; 

Fig. 3 is a schematic block diagram illustrating a request handling system in accordance with an aspect of the 
45 present invention; 

Fig. 4 Is a flow chart diagram illustrating a methodology for providing a multi-tier architecture In accordance with 
an aspect of the present Invention; and 

Fig. 6 Is a schematic block diagram illustrating a system In accordance with an aspect of the present Invention. 

50 Detailed Description of the invention 

[0014] The present invention Is now described with reference to the drawings, wherein like reference numerals are 
used to refer to like elements throughout. 

[0015] The present Invention relates to a system and methodology for executing network server applications on a 
55 client machine (e.g., inside a browser) without the need for a network server to be installed locally on the machine. 
Applications may thus be downloaded and installed automatically thereby facilitating a zero-cost Installation and exe- 
cution in a secure environment. The present invention enables network applications that look similar and/or identical 
to network applications written for network servers. Furthennore, these applications may run offline and without the 
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hardware requirements generally associated with a host network server. 

[001 6] Referring initially to Fig. 1 a, an exemplary system 1 0a illustrates an aspect of a multi-tier distributed applica- 
tions architecture In accordance with the present invention. A local system 20 is provided for handling local system 
requests and local data handling {e.g., Web page, wireless data) operations. A presentation tier 24 which may Include 

5 a browser (not shown) (e.g., Internet Explorer, Netscape, HTML 3.2, WML, JAVA) provides an interface for users to 
access local {e.g., Web) Information on the local system 20. As users access the presentation tier 24, local data requests 
28 {e.g., HTTP) are sent to a mobile tier 32. The mobile tier 32 provides local application logic (not shown) for translating 
and directing local requests 28 for processing at the local system 20 and/or sending remote requests 36 (e.g., HTTP) 
to a remote system 40. It is noted that the mobile tier 32 may generally be considered as "unguarded logic" except, 

10 for example, in systems wherein a high degree of trust may be established between the remote system 40 and the 
local system 20. The remote system 40 may Include a guarded tier 44 for providing the local applications logic to the 
mobile tier 32 and/or for providing an interface to data relating to information {e.g., Web pages, remote application 
data) associated with a data tier 48. By enabling applications logic and data associated with the data tier to be down- 
loaded from the guarded tier 44, local system 20 resources may be leveraged to facilitate information access and to 

15 enable information provided by the data tier 48 to be manipulated and utilized off line by the local system 20. It is noted 
that the application logic In the mobile tier 32 may alternatively be provided locally by loading from a CD and/or floppy 
disk, for example, on the local system 20. 

[0017] As local requests 28 are generated for accessing and operating on local data, the mobile tier 32 determines 
if application logic for sen/icing the local requests 28 Is resident on the local system 20. If the applications logic is not 

20 resident, the mobile tier 32 may initiate a download request via the remote request 36 to the guarded tier to have the 
application logic sent from the remote system 40. Upon receiving the logic, the mobile tier 32 may also receive data 
from the data tier 48 for servicing local data requests 28. After the mobile tier 32 has been configured to service local 
requests 28, the user may then access information, for example, as if provided at the remote system 40. However, 
local system 20 resources may now be utilized to service the requests. In this manner, Improved performance and 

25 offline manipulations of information (e.g., Web page) may thus be achieved. If a local request 28 requires further data 
for operation, additional remote requests 36 may be initiated to the guarded tier 44, and/or Initiated at a later time when 
the user reestablishes an online connection after having worked offline. 

[0018] It is noted that the guarded tier 44 may provide the applications logic and data described above via a remote 
response 54 (e.g., XML file, Wireless Markup Language (WML) file). It Is further noted that the mobile tier 32 logic may 

30 reside on either the guarded tier 44 or mobile tier 32. For example, the guarded tier 44 may Include portions of an 
interface (not shown) to respond to mobile tier 32 download requests In accordance with the present invention, and 
may include logic for servicing requests from the presentation tier 24 directly. Referring briefly to Fig. 1b, a bypass 
request 66 may be initiated by the presentation tier 24 to access remote systems directly if a guarded tier configured 
In accordance with the present Invention is not provided by the remote system 40. 

35 [0019] Referring back to Fig. la, after the local system 20 has been configured {e.g., download and/or CD Installation) 
an offline system in accordance with the present invention may be utilized. For example, an application may be down- 
loaded from an Internet shopping site. The application may provide a portion of its data catalog in XML format for offline 
viewing from the data tier 48 described above. The Internet shopping site may advertise on its entry page, for example, 
that users can browse their inventory and place orders while offline by clicking on a link. The shopping application and 

40 an XML data catalog may then be downloaded and automatically installed locally. Throughout the week, the customer 
browses the catalog locally and adds Items to their shopping cart whenever they remember they need something. 
When the order is submitted, a queued transaction may be generated in an XML store maintained in the application's 
storage (not shown). The next time the user Is online, they may navigate to the shopping application, which notifies 
them that they have orders to submit. The user may then authorize the submission of the order, which is then processed. 

45 The user may also receive notification of any price changes (sales or cost Increases), and then may authorize or reject 
the order wherein an estimated delivery time may be returned. 

[0020] It is to be appreciated that although an Internet application example has been described above, that the 
present Invention may apply to substantially any local and remote system configured in accordance with the present 
Invention. For example, a wireless telephone. Personal Digital Assistant (PDA), or other handheld device may be 

50 configured to load mobile tier logic in accordance with the present invention from a remote server location. For example, 
a wireless phone user may download applications logic and data relating to a phone directory from a remote system. 
At some later time for example, the user may access and manipulate the directory as If the user were still connected 
via a direct wireless connection to the remote system. If additional data were required from the remote system, the 
mobile tier logic may request the additional data the next time the user accesses the remote system or initiate a wireless 

55 connection to the remote system based upon the request. It is to be further appreciated that a plurality of other local/ 
remote systems may be similarly configured. 

[0021 ] As will be described in more detail below, a security system may be included within the mobile tier 32 to protect 
local flies within the local system 20 from undesired accesses, it Is also noted that the remote system 40 may include 
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a tightly coupled reiationship between the guarded tier 44 and the data tier 48 wherein the guarded tier logic for ac- 
cessing the data tier may be highly dependent on the data tier 48. In contrast, the present Invention provides a loosely 
coupled relationship between the local system 20 and the remote system 40 wherein data may be accessed infrequently 
and at the behest of local system requirements thereby facilitating maximum flexibility and perfomiance between the 
5 systems, it is further noted that a tightly and/or loosely coupled arrangement may be established between the presen- 
tation tier 24 and the mobile tier 32. 

[0022] Referring now to Fig. 2, a system 1 0b illustrates a local system 20 architecture In accordance with an exem- 
plary aspect of the present invention. Although the system 10b is described In relation to an Internet example, it is to 
be appreciated that the present invention may be applied to substantially any local/remote data access system as 

io described above. For example, the local system 20 may include a browser 60 for providing a user interface for com- 
municating to local applications logic 64 to access Web pages 68 and or other data formats. The Web pages 68 may 
include HTML headers and scripts for operating the Web page, for example. A handler 72 (e,g., HTTP) may also be 
provided for processing local requests 28. As will be described in more detail below, local requests may be mapped 
to the local system upon loading of the local application logic 64. For example, a remote Internet request may appear 

^5 as: http:www.exampie.com wherein the present Invention may map the remote request to iVIyCompany: www. example, 
com for local Web page access upon loading of the logic 64. Thus, a user is provided with a seamless and transparent 
system for processing Web page and/or other requests on the local system 20. 

[0023] Referring now to Fig. 3, a system 1 0c Illustrates a request handling system in accordance with an aspect of 
the present invention. The system 1 0c may be adapted to execute In conjunction or within the browser 60. The system 

20 1 oc utilizes an asynchronous pluggable protocol handler (APR) 80 that may be registered as the handler forthe protocol 
scheme described below. When requests are generated by the browser 60 employing the protocol scheme, a URL 
Monitor 84 activates the handler (APP) 80. The APP 80 hands the request off to a worker request 88 written for the 
system 10c, which maps the URI (Universal Resource identifier) to a local handler 92 (static files may also be directed 
through this mechanism) adapted to process local HTTP requests 96. The APP 80 provides the browser 60 with a 

25 suitable security zone forthe given application based on infomnation from the local registry (not shown). 

[0024] The protocol scheme described above will now be described In more detail. The system 1 0c may employ the 
protocol scheme to Identify all URI's including both dynamic and static content. For example, a Web site application 
may present the following URI's that are ail resolved to local handlers 92 (the mapping mechanism is described in 
more detail below) wherein expampleweb provides an exemplary mapping to local resources. 

30 

exampleweb://www.microsoft.com/money/default.aspx 
exampleweb://www.microsoft.com/money/lmages/logo.jpg 
exampleweb://www.microsoft.com/money/accounts.aspx 
exampleweb ://www. microsoft.com/money/static/abo ut. htm 

35 

[0025] The system 10c may maintain a local mapping of installed applications and their URI namespaces to local 
storage locations. This enables users to refer to remote applications employing their remote URI for example. This 
also enables URI's to be exportable in some manner to other installations and enables demand-driven installation of 
applications adapted to operate with the present invention. Additionally, browser applications may be alerted that these 
40 applications, which may be installed locally, originate remotely and therefore should run with trust suitable to the remote 
site, rather than the local machine. 

[0026] For example, consider a user installing a future version of Microsoft Money employing the URI exampleweb: 
//www.microsoft.com/money. The first attempt to Invoke the URI may result In the system 10c retrieving a manifest 
(described below) utilizing its naming pattern from the site (e.g., hnjp'J/wm^ microsoft com/money/exampleweb.osd) . 
45 If the user chooses to Install the application, the data may be copied locally and installed. When the user later returns 

to the application URI 

(exampleweb ://www.microsoft.conn/money), the system 1 0c may invoke the locally installed version of the application. 
When the application is local however, the browser 60 should be alerted that it's a remote application so that the browser 
does not access local resources doing cross frame attacks in the browser, for example. This mechanism also enables 

50 the user to know what they're running and where files originated. 

[0027] When resolving names, the system 1 0c may iterate over a list (not shown) of local mappings looking for the 
longest match, for example. After choosing the longest match, the system may resolve the match to the application 
domain of the Installed application and call an appropriate handler 92. In the case of shadowing, wherein the user has 
installed an application from a given point and later wants to install an application from a point deeper in the same 

55 hierarchy (e.g., exampleweb://www.microsoft.com/money/addons/loan-caiculator), demand-Installation may still be a 
possibility because there may be no handler 92 registered for the URI. 

[0028] The following example illustrates an aspect of how URI mapping may operate In the system 1 0c. A user may 
have two applications Installed as follows: 
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5 




10 [0029] Each of these applications may have a hierarchy under its root consisting of Web pages, COM4- assemblies 
in a bin directory, static content, and data, for example. Applications may have an arbitrary structure, but for this ex- 
ample, these applications may have the following exemplary structure: 



approot 

bin\ # Business logic (various assemblies) 

img\ # images 

data\ # XML stores 

default .aspx 

config.cfg 

[0030] The following tables demonstrates various exemplary application URI's and the physical file that they corre- 
spond to. It Is to be appreciated that applications may also maintain virtual URI's by associating requests for part of 
25 their URI namespace to a given handler 92. 



liRI PtmicalPath 




40 [0031] There may be at least two ways to Install applications: Utilizing a standard Installation platform to Install the 
application or demand-driven installation wherein a remote URI Is requested using the protocol scheme described 
above. Installed applications may be maintained in a local registry (not shown) that maps URI's to their installed location. 
The registry may also maintain Installation Information Including the time of installation and usage information. The 
infonnation for applications may be stored In the system registry under HKEY_CURRENT_USER\\SOFTWARBMI- 

45 crosoft\XSP\Exampleweb, for example. For each application, there may be a Icey named with their origin host and 
application path, (e.g., www.foo.com/myapp). For Installed applications, the following registry values may be included: 



50 



55 
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Vnhie Value Tvpe Description 

Name 




[0032] Installation for explicit and/or demand-driven scenarios may consist of retrieving a cabinet (CAB) file or explicit 
file specified in the manifest (described below) along with any dependencies. When files have been retrieved, files may 
be placed into a directory in the file system (CAB files may be exploded preserving their directory hierarchies). An entry 
may be added to the registry thus mapping the application URI to Its physical location. The physical location may be 
determined on a unique identifier (such as a QUID not shown). This is desired so the name may not be easily computed. 
[0033] Applications may be placed in the file system employing the following naming convention. Starting from a 
base application directory {e.g., c:\program files), and append the server name, then the application name, and then 
a uniquely generated identifier. As an example, an application originating from http:/Avww.foo.com/bar/baz might reside 
In a directory entitled: 




[0034] The random part of the name should be unpredictable and generated by the system 1 0c prior to installing the 
application. Applications may consist of any suitable Web page handler including pages, messaging/web, method files, 
handlers, and configuration data. The configuration data may activate handlers for the application scope and provide 
settings for the application. 

[0035] When the user tries to navigate to a URi that is not installed locally, either because of clicking on a linic or by 
typing in the URI in the browser 60, the system 10c may try to locate the application manifest, described below. If the 
presented URI Identifies the application manifest as determined by the extension, the system may retrieve It and parse 
the manifest file. The user may then be presented with a User Interface Ul (not shown) that indicates the system 1 0c 
is attempting to install applications locally. For example, the Ul may show required disk space (based on the sum of 
<D!SKSPACE> OSD element, If present, and the size required to store any dependent CAB files) and enable users to 
override a default disk quota and browse file names contained in the application - if desired. The installation Ul may 
provide both a default view of basic configuration data and an advanced view that shows individual files and enables 
users to control application execution permissions [e.g., enable file I/O permissions and/or classic COM interoperabil- 
ity). 

[0036] It is noted that Installations may not require configurations initially, although configurations may be provided 
if desired. To enable transparent operation, the user should click to confirm the installation and proceed utilizing default 
values. If the URI did not refer to the manifest file directly, the system 10c may attempt to retrieve the manifest by 
combining the canonical manifest name with the host/path portion of the URI. If that fails, the system may employ a 
back-off algorithm consisting of removing portions of the path and thus locating the manifest file at each level. For 
packaged Installations {e.g., CD ROM, floppy), applications may call registry API's to register appropriately. By default, 
these applications may be given local trust. However, these applications may safeguard themselves employing COM+ 
code access security, for example, to request pennisslons that they may require. 

[0037] The Ul described above may include options to automatically update applications that are found to be out of 
date or the user may select to manually confirm updates on any applications that are found to be out of date. When 
the system checks for an application update, it may first retrieve the manifest file. If the manifest file has a different 
version, the system may retrieve and install the various dependencies pending user confirmation. As is with installation, 
the system may restrict download updates from the application's origin server as a safeguard. Additionally, an Isolated 
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Storage feature may be provided by COM-f , for example, to enable Installed applications to maintain durable storage 
locally. Isolated Storage provides a managed file system that supports Isolation via a plurality of mechanisms, expira- 
tion, and lifetime management. This is a feature of the COM+ for system 10c applications since applications maintain 
isolated data storage without exposing the user to risks of having the application access the local file system. 
[0038] The system 10c supports Installing applications employing the manifest {e.g,, OSD) described above. The 
default manifest name may be exampleweb.osd, for example. OSD manifests support an Implementation tag that 
enables the manifest to define varying representations of a software resource. For example, there might be a both 
native Win32 version and a system 1 0c version. The type of implementation may be denoted by an IMPLTYPE element. 
For example, the system may install applications that have an IMPLTYPE of "Com+", "Exampleweb" orthose that have 
one or fewer implementation elements that lack an explicit IMPLTYPE element. The OSD format may support an 
element called OS that allows different Implementations for different OS's. The system 10c may support this tag and 
accept implementations with no OS on any supported platform or may attemptto respect OS tags that restrict platfomns. 
This enables applications that require platform specific support like transactions to restrict installations to those plat> 
forms that support the desired features. For example, applications that have transactional semantics might require 
Windows 2000 with an element like the following: 



If applications also provide a version of the application that doesn't require transactions, a second Implementation may 
contain the elements: 




[0039] An exemplary manifest may Include the following: 




[0040] It is to be appreciated that there are several other optional elements that may be employed to provide infor- 
mation to a potential consumer of the application. For example, OSD may have a DISKSPACE element that details 
how much disk storage is required to contain the (unpacked) application. 

[0041 ] The following Attributes may be extensions to the OSD format supported by the system 1 0c. 
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piftment Description 




45 [0042] Downloaded applications may run with code access permissions (not siiown) granted by policy on the local 
machine for the remote domain. When local applications are installed, they may be granted permissions based on the 
URI provided for them at installation time which may be local and/or remote, depending on the user's desire. The 
system 10c may add policy to the application domain to indicate that any code loaded from the application directory 
hierarchy is associated with the domain of origin for the application. For example, consider an application downloaded 

50 and installed from www.foo.com/myapp. When system 1 0c loads the code from that application, it provides evidence 
to the security system that indicates that the code is from www.foo.com/myapp, therefore pennissions for that domain 
may apply. In addition, the system 10c may add policy in order that code loaded from the application directory (and 
children directories) may be associated with the remote URI: www.foo.conn/myapp. This mitigates enabling the appli- 
cation to load assemblies from its own directory and thus bypassing domain security. The system may also add policy 

55 to indicate that network input/output is to be enabled to the remote host of origin (in the above example, www.foo.com). 
[0043] An administrative Ul may also be implemented when the system 1 0c Is installed. For example, a toolbar button 
may be added to the browser 60 toolbar (not shown). When the button is clicked, it may navigate to exampleweb:// 
Home, for example, which may Invoke the administrative Ul. User navigation to exampleweb:// or exampleweb://Home 
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may also run the administrative Ul. Ttie administrative Ul may consist of tlie following exemplary pages: 

Home Page : this page may list installed applications and provides a way to easily remove them. In addition, it 
may provide links to install new applications from a local or remote source. 
5 instali Page : if this page is presented with a remote URI, it may present the user with information about the 

application from the manifest and enable them to Install the application. If this page is not presented with a remote 
URI, it may prompt for one. 

Local Install page: This page enables users to install a local application, specifying a local directory and the local 
URI to utilize for the application. 
10 Delete Confirmation Page: This page may prompt users for confirmation before deleting a page. If confirmation 

is given, it may remove the application. 

Update Page : This page notifies users that a newer version of the application is available and asks to retrieve it. 

If approval is granted, the newer version is downloaded and installed. If the application has an update page, this 
page should redirect to it after a successful update. 

15 

[0044] Referring now to Fig. 4, a flow chart diagram illustrates a methodology in accordance with the present inven- 
tion. At step 150, a user initiates a local data request. At step 154, a detemiination Is made as to whether an application 
has been loaded on the local system for operating on the request of step 150. If an application has been previously 
loaded, the methodology proceeds to step 160 and maps the request to the local system as described above. After 

20 the request has been mapped, the user may interact with the data {e.g., web page) on the local system at step 164. 
If the application for providing the requested services has not been loaded at step 154, the process proceeds to step 
168. At step 168, the application for serving the data request is loaded on the local system. As described above, the 
application may be downloaded from the remote system and/or loaded locally from a CD and/or other storage medium. 
After the application has been loaded at step 1 68, the process proceeds to step 1 60 and proceeds to map the request 

25 to the local system. 

[0045] In order to provide a context for the various aspects of the invention, Fig. 5 and the following discussion are 
intended to provide a brief, general description of a suitable computing environment in which the various aspects of 
the present invention may be implemented. While the invention has been described above in the general context of 
computer-executable instmctlons of a computer program that runs on a computer and/or computers, those skilled In 

30 the art will recognize that the Invention also maybe Implemented In combination with other program modules. Generally, 
program modules include routines, programs, components, data structures, etc. that perform particular tasks and/or 
implement particular abstract data types. Moreover, those skilled In the art will appreciate that the Inventive methods 
may be practiced with other computer system configurations, including single-processor or multiprocessor computer 
systems, minicomputers, mainframe computers, as well as personal computers, hand-held computing devices, micro- 

35 processor-based or programmable consumer electronics, and the like. The Illustrated aspects of the invention may 
also be practiced in distributed computing environments where tasks are perfomned by remote processing devices that 
are linked through a communications network. However, some, if not all aspects of the invention can be practiced on 
stand-alone computers. In a distributed computing environment, program modules may be located in both local and 
remote memory storage devices. 

40 [0046] With reference to Fig, 5, an exemplary system for implementing the various aspects of the Invention includes 
a conventional computer 220, including a processing unit 221, a system memory 222, and a system bus 223 that 
couples various system components including the system memory to the processing unit 221. The processing unit 
may be any of various commercially available processors, Including but not limited to Intel x86, Pentium and compatible 
microprocessors from Intel and others, including Cyrix, AMD and Nexgen; Alpha from Digital; MIPS from MIPSTech- 

45 nology, NEC, IDT, Siemens, and others; and the PowerPC from IBM and Motorola. Dual microprocessors and other 
multi-processor architectures also may be employed as the processing unit 221 . 

[0047] The system bus may be any of several types of bus structure including a memory bus or memory controller, 
a peripheral bus, and a local bus using any of a variety of conventional bus architectures such as PCI, VESA, Micro- 
channel, ISA and EISA, to name a few. The system memory Includes read only memory (ROM) 224 and random access 

50 memory (RAM) 225. A basic input/output system (BIOS), containing the basic routines that help to transfer information 
between elements within the server computer 220, such as during start-up, is stored in ROM 224. 
[0048] The computer 220 further includes a hard disk drive 227, a magnetic disk drive 228, e.g., to read from or write 
to a removable disk 229, and an optical disk drive 230, e.g., for reading a CD-ROM disk 231 or to read from or write 
to other optical media. The hard disk drive 227, magnetic disk drive 228, and optical disk drive 230 are connected to 

55 the system bus 223 by a hard disk drive interface 232, a magnetic disk drive interface 233, and an optica! drive interface 
234, respectively. The dnves and their associated computer-readable media provide nonvolatile storage of data, data 
structures, computer-executable instructions, etc. for the server computer 220. Although the descnption of computer- 
readable media above refers to a hard disk, a removable magnetic disk and a CD, It should be appreciated by those 
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skilled In the art that other types of media which are readable by a computer, such as magnetic cassettes, flash memory 
cards, digital video dlsl<s, Bernoulli cartridges, and the like, may also be used in the exemplary operating environment, 
and further that any such media may contain computer-executable instructions for performing the methods of the 
present Invention. 

5 [0049] A number of program modules may be stored in the drives and RAM 225, including an operating system 235, 
one or more application programs 236, other program modules 237, and program data 238. The operating system 235 
in the illustrated computer may be a l\/ljcrosoft operating system (e.p., Windows NT operating system). It Is to be 

appreciated that other operating systems may be employed such as UNIX, for example. 

[0050] A user may enter commands and information into the sers/er computer 220 through a keyboard 240 and a 

10 pointing device, such as a mouse 242. Other Input devices (not shown) may include a microphone, a joystick, a game 
pad, a satellite dish, a scanner, or the like. These and other input devices are often connected to the processing unit 
221 through a serial port interface 246 that is coupled to the system bus, but may be connected by other interfaces, 
such as a parallel port, a game port or a universal serial bus (USB). A monitor 247 or other type of display device is 
also connected to the system bus 223 via an interface, such as a video adapter248. In addition to the monitor, computers 

15 typically include other peripheral output devices (not shown), such as speakers and printers. 

[0051 ] The computer 220 may operate In a networked environment using logical connections to one or more remote 
computers, such as a remote client computer 249. The remote computer 249 may be a workstation, a server computer, 
a router, a peer device or other common network node, and typically includes many or all of the elements described 
relative to the server computer 220, although only a memory storage device 250 is illustrated In Fig. 5. The logical 

20 connections depicted In Fig. 5 may include a local area network (LAN) 251 and a wide area network (WAN) 252. Such 
networking environments are commonplace in offices, enterprise-wide computer networks, Intranets and the Internet. 
[0052] When employed in a LAN networking environment, the server computer 220 may be connected to the local 
network 251 through a network interface or adapter 253. When utilized in a WAN networking environment, the server 
computer 220 generally may Include a modem 254, and/or Is connected to a communications server on the LAN, and/ 

25 or has other means for establishing communications over the wide area network 252, such as the internet The modem 
254, which may be Internal or external, may be connected to the system bus 223 via the serial port interface 246. In 
a networked environment, program modules depicted relative to the computer 220, or portions thereof, may be stored 
in the remote memory storage device. It will be appreciated that the network connections shown are exemplary and 
other means of establishing a communications link between the computers may be employed. 

30 [0053] In accordance with the practices of persons skilled in the art of computer programming, the present Invention 
has been described with reference to acts and symbolic representations of operations that are performed by a computer, 
such as the computer 220, unless otherwise Indicated. Such acts and operations are sometimes referred to as being 
computer-executed. It will be appreciated that the acts and symbolically represented operations include the manipu- 
lation by the processing unit 221 of electrical signals representing data bits which causes a resulting transformation 

35 or reduction of the electrical signal representation, and the maintenance of data bits at memory locations In the memory 
system (including the system memory 222, hard drive 227, floppy disks 229, and CD-ROIVI 231 ) to thereby reconfigure 
or otherwise alter the computer system's operation, as well as other processing of signals. The memory locations 
wherein such data bits are maintained are physical locations that have particular electrical, magnetic, or optical prop- 
erties corresponding to the data bits. 

40 [0054] What has been described above are preferred aspects of the present invention. It Is, of course, not possible 
to describe every conceivable combination of components or methodologies for purposes of describing the present 
invention, but one of ordinary skill in the art will recognize that many further combinations and permutations of the 
present invention are possible. Accordingly, the present Invention Is Intended to embrace all such alterations, modifi- 
cations and variations that fall within the spirit and scope of the appended claims. 

45 

Claims 

1 . A network-based application, comprising: 

50 application and presentation logic, at least a portion of which is interchangeably processed by a server or a client 

without modification to the portion. 

2. The network-based application of claim 1 wherein core application functionality is preserved between the client 
and the server. 

55 

3. jhe network-based application of claim 1 , further comprising a mobile logic portion that may be downloaded from 
the server to the client. 
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4. The network-based application of claim 3, wherein the nnobile logic portion is loaded via a CD or floppy disk. 

5. The network-based application of claim 3, wherein the mobile logic portion further comprises unguarded logic for 
lower security systems. 

6. The network-based application of claim 3, wherein remote data is downloaded based upon a remote data request. 

7. The network-based application of claim 6, wherein the remote data request Is an HTTP request. 

8. The network-based application of claim 6, wherein the remote data is processed locally on the client via local data 
requests directed at the mobile logic portion. 

9. The network-based application of claim 6, wherein the remote data is provided by at least one of an XIVIL and WML 
response. 

10. The network-based application of claim 6, wherein the remote data is communicated via at least one of the Internet, 
Intranet, or wireless networks. 

11. An architecture for processing networked-based applications, comprising: 

a presentation tier for interacting with a networked-based application at a client; 

a mobile tier operatively coupled to the presentation tier, the mobile tier providing for executing at least a 

portion of the networked-based application at either the client end or a server; and 

a guarded tier operatively coupled to at least one of the mobile tier and presentation tier, the guarded tier 
providing for executing remaining portions of the network-based application at the server. 

12. The architecture of claim 11 , further Including a data tier operatively coupled to the guarded tier, the data tier 
including data employed in connection with executing the network-based application. 

13. The architecture of claim 11 , wherein the guarded tier includes logic for enabling the mobile tier to execute the 
network-based application. 

1 4. The architecture of claim 12, wherein the presentation tier generates local requests to the mobile tier to manipulate 
data provided by the data tier. 

15. The architecture of claim 14, wherein the mobile tier executes applications logic associated with the guarded tier 
to manipulate data provided by the data tier, 

16. The architecture of claim 15, wherein the mobile tier processes local data requests offline and generates remote 
requests to the guarded tier to at least one of transmit and receive data associated with the data tier based upon 
the offline local requests. 

17. A computer-readable medium having computer-executable instructions for providing the architecture of claim 16. 

18. A system for processing networked-based applications, comprising: 

means for interacting with a networked-based application at a client; and 

means for executing at least a portion of the networked-based application at either the client end or a server 
based upon requests generated by the client. 

19. The system of claim 1 8, further comprising means for supplying remote data employed In connection with executing 
local data requests associated with the network-based application. 

20. The system of claim 19, further comprising means for requesting the local data requests offline and generating 
remote requests to at least one of transmit and receive data associated with the remote data based upon the offline 

local requests. 

21 . A method for executing a network-based application, comprising: 
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executing at least a portion of a network-based application on a client computer, tlie network-based application 
comprising application and presentation logic, at least a portion of which is interchangeably processed by a server 
or the client without modification to the portion. 
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